so what are you doing with the Wifi network name (ie the SSID) ? and with WPA2 there is no need to have a password of more than even 20 characters (even that's a push), as the time to hack a WPA2 password is inordinately long.
I changed the SSID to something else to confuse any would be young hacker. I've been hacked in the past (when I had the Superhub 2) which made my downloads as slow as hell.
And the time it takes to hack any WiFi is not relevant to a hacker. They set up the hack and leave it running and go and do something else until the hack has finished, it could be hours or days it doesn't matter because when it finishes it sounds an alarm alerting the hacker back from whatever they were doing to see the results.
I've watched this happening in America while on a trip to computer trade fairs. While the fair's were running, small groups of teenagers who worked at the shows would get together in Motel rooms somewhere and exchange hacking tips and tricks with each other while their laptops were running Kali Linux hacks.
I happens in the US and its happening around the corner from where you or I live and anybody who thinks otherwise is just plain dumb in my eyes. So Virgin wants to wise up and be more responsible and allow its customers to adopt passwords of what ever length they wish to use instead of these flimsy ones we have to endure at the moment.
You are right to a degree about them setting a brute force and letting it go. But..... have you seen the difference in the time it takes to brute force an 9 character (complex) password compared to an 8 character password? Let alone a 20 character password. They could have a conference running for years and still not get a 20 character complex password.
If you have been hacked, it's because of the following: 1. An unpatched vulnerability 2. Unsecure password policies ie dictionary word, not long enough 3. Other vunerability, virus, worn, trojan, reverse connection etc via phishing etc
It generally isn't via passwords unless they are weak. What you witnessed was people sniffing traffic so whenever using public wifi, always use a vpn or ensure that any logins etc are done using SSL and that includes your mail clients using IMAP, POP etc.
Yer I agree with what your saying, but you've got to take into account that the average Virgin customer is still using that password stuck to the bottom of the hub oblivious to the young hacker living next door or up the street and doesn't know anything about VPN's and SSL.
The majority of mobile phone owners in the UK have their Bluetooth switched on to be 'seen by all' all the time because they don't understand the electronics in their hands. All they want to do is text and surf the Internet.
The same goes for Virgin customers in general who get their hubs delivered, open up the box it came in , throw away the user manual and plug the hub in and start surfing.
My God you must have a wind up laptop if it takes that long to hack virgins very short passwords.
Trying to crack a 8 character long password comprising of upper\lower case characters, numbers and special characters (96 characters, 7.2 Quadrillion permutations) with a decent multicore PC capable of 10 million guesses a second will take up to around 23 years to crack, giving the hacker plenty of time to go on several world cruises whilst waiting for the alarm.
A 10 character with the same random mixture the alarm will go off in around 212019 AD around teatime